First published: Thu Nov 05 2020(Updated: )
In BIG-IQ 7.1.0, accessing the DoS Summary events and DNS Overview pages in the BIG-IQ system interface returns an error message due to disabled Grafana reverse proxy in web service configuration. F5 has done further review of this vulnerability and has re-classified it as a defect. CVE-2020-5944 will continue to be referenced in F5 Security Advisory K57274211 and will not be assigned to other F5 vulnerabilities.
Credit: f5sirt@f5.com
Affected Software | Affected Version | How to fix |
---|---|---|
F5 BIG-IQ Centralized Management | >=7.1.0<7.1.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5944 is a vulnerability in BIG-IQ 7.1.0 that causes an error message when accessing the DoS Summary events and DNS Overview pages due to a disabled Grafana reverse proxy in web service configuration.
CVE-2020-5944 affects F5 BIG-IQ Centralized Management version 7.1.0, causing errors when accessing certain pages in the system interface.
CVE-2020-5944 has a severity rating of 4.3, which is classified as medium.
To fix CVE-2020-5944, you can enable the Grafana reverse proxy in the web service configuration of BIG-IQ 7.1.0.
You can find more information about CVE-2020-5944 in the F5 support article: https://support.f5.com/csp/article/K57274211